Ray,
That is a good point, and then the Council has to explain in its public interest test that it has loads of credit card fraud, thus its concern for this prevention of crime. To
avoid disclosing the fact that its senior officers have corporate credit cards the council has to admit that you have credit card fraud, which is not a great message. The Bexley decision was based upon the police turning up and providing a load of crime stats
to demonstrate that this was happenning and would likely happen in Bexley should the empty property information be disclosed.
For a council to use this exemption they will have to provide evidence in their PIT. Moreover, it will raise questions with Internal Audit who have the responsibility for implementing
counter fraud strategies wthin a council or an organisation.
On the whole, I do not think the public interest test needd for s.31 (1) (a) is going to be met in this instance especially given that the cards were first issued years ago and
fraud issues, should they have occurred, will have been addressed and strong safeguards (should) will be in place before the cards are issued.
My brief experience with these cards at a previous council was that the bills, when they came back, were scrutinized very closely and the slightest whiff of anything untoward
or unexplained was immediately questioned. The authorising process to get the card used in the first instance required a second person to approve the purchase.
Best,
Lawrence
From: This list is for those interested in Data Protection issues
[mailto:[log in to unmask]] On Behalf Of Ray Cooke
Sent: 09 June 2011 17:58
To: [log in to unmask]
Subject: Re: [data-protection] Credit Card Holders - Personal Data?
If you are worried about the information being used to commit a crime, isn't the law enforcement s31 (1) (a) exemption also arguably appropriate here as well as s40 personal data? Disclosure likely to prejudice
the prevention of crime.
Ray Cooke
www.brookes.ac.uk
All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html
Selected commands (the command has been filled in below in the body of the email if you are receiving emails in HTML format):
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm and are sent in the body of an otherwise blank email to [log in to unmask]
Any queries about sending or receiving messages please send to the list owner [log in to unmask]
(Please send all commands to [log in to unmask] not the list or the moderators, and all requests for technical help to [log in to unmask], the general office helpline)